Cybersecurity Policy and Compliance Analyst, Senior in Denver, CO at Booz Allen Hamilton Inc.

Date Posted: 9/10/2018

Job Snapshot

Job Description

Job Number: R0018173

Cybersecurity Policy and Compliance Analyst, Senior

Key Role:
Function as a technical security, FISMA analyst, and subject matter expert (SME), ensuring NIST 800–53 Revision 4 management, operation, technical, and privacy security control implementation compliance for large, complex information systems. Perform ongoing monitoring of compliance with FISMA documentation requirements to provide timely detection, identification and alerting of non-compliance issues. Provide expertise, guidance, and recommendations on developing and improving FISMA documents and templates, including configuration management plans, incident response plans, Plan of Action & Milestones (POA&M), Privacy Impact Assessments (PIA), risk assessments, and SSP implementation statements. Provide expertise, guidance, and recommendations on requirements for Cloud-based systems. Prepare FISMA-relevant briefing materials and presentations approximately once per month for a variety of audiences consisting of individual and regional information system security officers, the chief information system security manager, and the authorizing official.

Basic Qualifications:
-5+ years of experience with FISMA activities, including system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action and Milestones (POA&M), and training requirements
-5+ years of experience with applying NIST SP 800-37 Risk Management principles, interpreting requirements, and developing implementation guidance
-Experience with implementing requirements and guidance and analyzing policies, procedures, guidance, standards, and instructional materials
-Experience in working with interagency teams to design, develop, and implement FISMA compliant solutions that meet current and future business requirements and enhance and optimize the existing security architecture
-Knowledge of Federal Privacy requirements, including Privacy Impact Assessments (PIAs) and personally identifiable information (PII)
-Knowledge of Cloud security processes

-Ability to obtain a security clearance
-BA or BS degree

Additional Qualifications:
-Experience with federal agencies
-Possession of excellent oral and written communication skills
-Public Trust clearance
-Security+ or CISSP Certification preferred

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

#LI-AH1, CB15, CJ1, DH1, GD15, MPPC

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.